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IMPROVEMENTS IN AND RELATING TO METHODS OF COMMUNICATION 

The present invention relates to methods of communication 
and to composite credentials. 

In communication across a distributed electronic network 
such as the internet, particularly (but not exclusively) 
in a business to business communication, there may be many 
separate business to business communications required for 
a single action or transaction. 

Figure 1 of the drawings that follow illustrates such a 
known communication method and system. In Figure 1 there 
is shown a first party 2 in communication with a set 4 of 
other enterprises comprising a second party 6, third party 
8, fourth party 10, fifth party 12 and sixth party 14, 
respectively some of which are in communication with each 
other as indicated by the arrows in Figure 1. 
Communication between the first party 2 and the set of 
other enterprises 4 is across the internet (indicated 
schematically at 16) . Communication between the second to 
sixth parties 6-14, respectively may be across the 
internet, but could also be across a wide area network 
(WAN) or local area network (LAN) . Typically, each party 
will be an enterprise such as. a business. 

If the first party 2 wishes to communicate reliably with 
the second party 6, for instance to carry out a financial 
transaction it is necessary for first party 2 to provide a 
credential 18 to the second party 6. 




A credential is a data structure provided to the bearer 
for a purpose with some acknowledged way to verify the 
bearers right to use the credential . 



5 In the digital environment a credential will generally be 
an electronic document which has a defined structure known 
to all involved parties. Credentials are issued by an 
authority (sometimes referred to as a trusted source) . 
Typically the credential has additional data (ie a digital 
10 signature) that "ties" the document content to the issuer. 

Typically a credential will comprise information 
concerning the bearer (perhaps identity details or 
financial records) and will be digitally signed by a 
15 trusted source. Verification is achieved by decryption of 
the digital signature. Generally a credential performs 
the functions of authentication and authorisation. 

The purpose of the credential is to identify the user 
20 and/or to validate a transaction between parties, which 
transaction may be the transfer of information which needs 
to be validated. However, for the second party 6 to 
complete the transaction it needs (in this example) to 
communicate with the third and fourth parties 8, 10 
25 respectively. The third and fourth parties 8, 10 

respectively each communicate separately with fifth party 
12 , which in turn communicates with sixth party 14. Each 
party 6-14 may require a different credential from first 
party 2 to validate its part of the transaction. In this 
30 example, third party 8 requires a second credential 20 
from first party 2 and fifth party 12 requires a third 
credential 22 from first party 2. Thus, third party 8 and 
fifth party 12 need to communicate separately with a first 




party 2 to obtain the second and third credentials 20, 22 
respectively. This, therefore, is a multi-layer 

communication. First party 2 will not necessarily be 
aware of the need at the beginning of the transaction for 
5 the third and fifth parties 8, 12 respectively to be 
- * involved so extra validation and credential transfer may 
be required. 

To undertake such a transaction, data continuously has to 
10 be sent back and forth between the involved parties. This 
increases the possibility of an external attack. To 
minimise the risk of an attack, data has to be protected 
and verified by each party of a transaction at each step, 
which reduces the overall performance. 

15 

Moreover, such a method of communication requires many 
separate communications between the parties. 

Specifically, the first party is involved in several 
communications which is undesirable. 

20 

It is an aim of preferred embodiments of the present 
invention to improve performance in such communication 
environments . 

25 According to the present invention in a first aspect, 
there is provided a method of communication, the method 
comprising the steps of a first party communicating to a 
second party a composite credential across a distributed 
electronic network which composite credential comprises a 

30 plurality of credentials. 

A credential for the purpose of the present invention is a 
data structure provided to the bearer for a purpose with 



some acknowledged way to verify the bearers right to use 
the credential. 

Suitably, second party communicates at least part of the 
composite credential to a third party • The second party 
may modify the received composite credential before 
communicating it to the third party. The modification may 
be by addition to . and/or removal from the composite 
credential. Suitably, the second party communicates the 
received composite credential to the third party. 

According to the present invention in a second aspect, 
there is provided a composite credential for communication 
of credentials across a distributed electronic network, 
the composite credential comprising a plurality of 
credentials . 

The use of such a composite credential can reduce the 
number of communications required in a multi-layer 
transaction. 

Suitably, at least one credential in the composite 
credential is obfuscated. Obfuscation is a process 

whereby data is rendered not easily intelligible to an 
unauthorised recipient. Generally, obfuscation will be by 
encryption but may also be by data compression or in other 
way. Suitably, a plurality of credentials in the 

composite credential is obfuscated. Suitably, all 

credentials are obfuscated within the composite 
credential. Suitably, different obfuscation is used for 
at least two credentials in the composite credential . 
Suitably, different obfuscation is used for each 




obfuscated credential in the composite credential. 
Suitably , the obfuscation comprises asymmetric encryption. 

In the above method of communication, suitably the first 
5 party communicates to the second party the composite 
credential, which composite credential is at least partly 
obfuscated, and the second party de-obfuscates a relevant 
credential. 

10 Suitably, the composite credential comprises a first 
credential and a second credential in which the second 
credential is enveloped by the first credential. Such a 
composite credential can be used to dictate the order in 
which the credentials within the composite credential 

15 can/must be read and therefore a workflow. 

In a method of communication, suitably a first party 
communicates to a second party a composite credential 
according to the preceding paragraph, which composite 

20 credential is de-obfuscated by the second party thereby to 
obtain the first credential and a partly de-obfuscated 
second credential, which party de-obfuscated second 
credential is communicated by the second party to a third 
party. Suitably, the third party de -obfuscates the partly 

25 de-obfuscated second credential. 

Suitably, the composite credential is obfuscated. 
Suitably, the obfuscation comprises an asymmetric 
encryption. 

30 

Suitably, in a composite credential in which a plurality 
of credentials is variably obfuscated, a second party de- 
obfuscates at least one credential and communicates to a 




third party at least one obfuscated credential from the 
composite credential. In this way credentials can be sent 
to be readable only by the party or parties for which they 
are intended. 

5 

Suitably, at least one credential is digitally signed. 
Suitably, a plurality of credentials is digitally signed. 
Suitably, all credentials in the composite credential are 
digitally signed. Suitably, the composite credential is 
10 digitally signed. 

Suitably, the distributed electronic network is the 
internet . 

15 The composite credential of the first aspect of the 
invention may be according to the second aspect of the 
invention . 

The present invention will now be described, by way of 
20 example only, with reference to the drawings that follow; 
in which: 

Figure 1 is a schematic functional illustration of a 
method of communication as required by the prior art. 

25 

Figure 2 is a schematic functional illustration of a 
method of communication according to the present 
invention. 

30 Referring to Figure 2 of the drawings that follow, there 
is shown a first enterprise 3 0 in digital communication 
with a second enterprise 32, which second enterprise is in 
digital communication with third and fourth enterprises 




34, 36 respectively, each of which in turn is in 
communication with a fourth enterprise 38, which is in 
communication with a fifth enterprise 40. The second to 
sixth parties 32-40 respectively form a set* of enterprises 
5 42 required to complete a communication between first and 
second parties 2, 4 respectively. 

Communication between first party 2 and second party 4 is 
across the internet (though it need not be) , indicated 
10 schematically at 44. 

To complete the communication, second party 32 requires a 
first credential 46 from first party 30, third party 34 
requires a second credential 4 8 from first party 3 0 and 
15 fifth party 38 requires a third credential 50 from first 
party 3 0 (as in the prior art example referred to above in 
relation to Figure 1) . 

The first, second and third credentials 46-50 respectively 
20 are stored with a fourth credential 52 in a composite 
credential 54. In this embodiment, the composite 

credential 54 comprises a data file (eg a HTML form, an 
XML file, a WORD (trade mark) file or even just plain 
ASCII text) containing the first, second and third 
25 credentials 46-50 respectively. The composite credential 
54 is digitally signed by the first party 30. Digital 
signing allows for modifications to the data to be 
detected and identifies who the signer was. 

30 The composite credential 54 is sent by the first party 30 
via the internet to second party 32, which extracts the 
. required first credential 46 from the composite credential 
54 and passes the composite credential 54 to third and 
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fourth parties 34, 36 respectively along with any other 
information necessary for their (the third and fourth 
parties 34, 36 respectively), part of the communication. 

Third party 34 verifies the composite credential 54 by 
decrypting the digital signature and extracts second 
credential 48 from the composite credential 54, uses 
second credential 48 as required, and passes the composite 
credential 54 along with any other information required to 
fifth party 38. Fourth party 36 does not require a 
credential and so does not need to examine the composite 
credential 54. Fourth party 36 passes on the required 
information and the composite credential 54 to fifth party 
38. Fifth party 38 extracts third credential 50 from 
composite credential 54 and uses it as required together 
with the other information with which it has been 
supplied. 

It is noted that third and fifth parties 34, 38 
respectively obtain the second and third credentials 48, 
50 respectively of the first party 3 0 from composite 
credential 54 without the need for them to communicate 
directly with the first party 30. Accordingly, the number 
of communication operations required to complete the 
communication is reduced and, performance is increased. 

The fourth credential 52 is not required as part of this 
communication but can (with other credentials) be included 
in composite credential 54 as it may be of use in other 
communication transactions . 

Thus, the first party 3 0 can have a single composite 
credential 54 for use in a plurality of communication 




transactions, other parties choosing the credentials they 
want or need from the composite credential 54 even if not 
all of the credentials are required for the particular 
communication transaction. Further the first party 30 may 
5 have a plurality of discrete composite credentials each 
containing a different combination of (not necessarily the 
same) credentials . 

One or more credentials in the composite credential 54 
10 may be obfuscated. Each credential 4 6-52 may be 

obfuscated using a different form of obfuscation. 
Accordingly only certain of the second to sixth parties 
may have the knowledge (as required) to de-obfuscate the 
credential (s) they require. Obfuscation may be by 

15 symmetric (eg Digital Encryption Standard (DES) or 
Internation Data Encryption Algorithm (IDEA)) or 
asymmetric (eg public/secret key) encryption. An 
alternative forms of obfuscation is data compression for 
instance by using WINZIP (trade mark) . Obfuscation of the 
20 credentials 46-52 enhances security. Thus, while 

obfuscation preferably involves encryption, it need not. 

Each party upon receipt of composite credential 54 may 
pass on (i) the original composite credential 54, (ii) a 

25 version excluding the credential the transmitting party 
has used (this requires knowledge on the part of the 
transmitting party that the receiving party and any 
subsequent using party will not need the excluded 
credential) , (iii) a version with one or more previously 

30 obfuscated credentials de-obfuscated (which reduces the 
security of the method, but also reduces processing 
requirement for subsequent parties so may be appropriate, 
for instance, where the subsequent parties are within the 
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same organisation as the transmitting party) or (iv) a 
version with additional data added. If a modified 
composite credential is transmitted, the modifier will 
digitally sign the modified data. 

5 

Further, de-obf uscation of a credential may be dependent 
on de-obf uscation of a preceding credential. For 
instance, by way of example, a first credential 4 6 is 
obfuscated using a first key known to the second party 32 

10 only. The second credential 48 is obfuscated by a second 
key, which second key requires knowledge of the first key. 
For instance, a session key for the second credential may 
be embedded in the obfuscated first credential . Even when 
de-obfuscated from the first credential, the session key 

15 for the second credential may remain obfuscated, to be de- 
obfuscated by the third party. 

Only the third party 34 has the knowledge to read the 
obfuscated second credential 48, but the knowledge it has 

20 is only sufficient if it has received the de-obfuscated 
first credential 46. Once it has done so it can de- 
obfuscate the second credential and use it as required. 
This enveloping of credentials can be used as many times 
as desired to control the order in which parties 

25 subsequent to the first party 30 can access the 
credentials . 

The composite credential 54 will usually be digitally 
signed to validate it as having been signed by a 
30 recognised party and enable the recipient to establish 
whether it has been modified at all. The composite 
credential 54 may be digitally signed by each party before 
transmission to validate the source and content thereof. 




This can also be used to maintain an audit trail for the 
composite credential 54. However, composite credentials 
(and credentials within the composite credentials) that 
are not digitally signed also fall within the scope of the 
5 present invention. 

The reader's attention is directed to all papers and 
documents which are filed concurrently with or previous to 
this specification in connection with this application and 
10 which are open to public inspection with this 
specification, and the contents of all such papers and 
documents are incorporated herein by reference. 

All of the features disclosed in this specification 
15 (including any accompanying claims, abstract and 
drawings) , and/or all of the steps of any method or 
process so disclosed, may be combined in any combination, 
except combinations where at least some of such features 
and/or steps are mutually exclusive. 

20 

Each feature disclosed in this specification (including 
any accompanying claims, abstract and drawings) , may be 
replaced by alternative features serving the same, 
equivalent or similar purpose, unless expressly stated 
25 otherwise. Thus, unless expressly stated otherwise, each 
feature disclosed is one example only of a generic series 
of equivalent or similar features. 

The invention is not restricted to the details of the 
30 foregoing embodiment (s) . The invention extend to any novel 
one, or any novel combination, of the features disclosed 
in this specification (including any accompanying claims, 
abstract and drawings) , or to any novel one, or any novel 
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combination, of the steps of any method or process 
disclosed- 



Claims 

1. A method of communication, the method comprising the 
steps of a first party communicating to a second party 

5 a composite credential across a distributed electronic 

network which composite credential comprises a 
plurality of credentials. 

2. A method of communication according to claim 1, in 
10 which second party communicates at least part of the 

composite credential to a third party. 

3. A method of communication according to claim 2, in 
which the second party modifies the received composite 

15 credential before communicating it to the third party. 

4. A method of communication according to claim 2, in 
which the second party communicates the received 
composite credential to the third party. 

20 

5 . A method of communication according to any preceding 
claim, in which at least one credential in the 
composite credential is obfuscated. 

25 6 . A method of communication according to claim 5 , in 
which a plurality of credentials in the composite 
credential is obfuscated. 
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A method of communication according to claim 5, in 
which all credentials are obfuscated within the 
composite credential . 



14 



A communication method according to claim 6 or claim 
7, in which different obfuscation is used for at least 
two credentials in the composite credential. 

A method of communication according to claim 7 or 
claim 8, in which different obfuscation is used for 
each obfuscated credential in the composite 
credential . 

A method of communication according to any one of 
claims 5 to 9, in which the obfuscation comprises 
asymmetric encryption. 

A method of communication according to claim 8 or 
claim 9, in which in a composite credential in which a 
plurality of credentials is variably obfuscated, a 
second party de-obfuscates at least one credential and 
communicates to a third party at least one obfuscated 
credential from the composite credential. 

A method of communication according to any preceding 
claim, in which the composite credential comprises a 
first credential and a second credential in which the 
second credential is enveloped by the first 
credential . 

A method of communication according to any preceding 
claim, in which a first party communicates to a second 
party a composite credential according to claim 12, 
which composite credential is de-obfuscated by the 
second party thereby to obtain the first credential 
and a partly de-obfuscated second credential, which 
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party de -obfuscated second credential is communicated 
by the second party to a third party. 

14. A method of communication according to claim 13, in 
5 which the third party de-obfuscates the partly de- 
obfuscated second credential . 

15. A method of communication according to any one of 
claims 1 to 4 , in which the composite credential is 

10 obfuscated . 

16. A method of communication according to claim 15, in 
which the obfuscation comprises an asymmetric 
encryption. 
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17. A method of communication according to claim 15 or 
claim 16, in which the first- party communicates to the 
second party the composite credential, which composite 
credential is at least partly obfuscated, and the 
second party de-obfuscates a relevant credential. 

18. A method of communication according to any one of 
claims 1 to 4, in which at least one credential is 
digitally signed. 

19. A method of communication according to claim 18, in 
which a plurality of credentials is digitally signed. 
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A method of communication according to claim 18, in 
which all credentials in the composite credential are 
digitally signed. 
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21. A method of communication according to any one of 
claims 1 to 4 , in which the composite credential is 
digitally signed. 

5 22 . A method of communication according to any preceding 
claim, in which the distributed electronic network is 
the internet . 

23. A composite credential for communication of 
10 credentials across a distributed electronic network, 

the composite credential comprising a plurality of 
credentials. 

24. A composite credential according to claim 23, in which 
15 at least one credential in the composite credential is 

obfuscated. 

25. A composite credential according to claim 24, in which 
a plurality of credentials in the composite credential 

20 is obfuscated. 



26. A composite credential according to claim 24, in which 
all credentials are obfuscated within the composite 
credential . 

25 

27. A composite credential according to claim 25 or claim 
26, in which different obfuscation is used for at 
least two credentials in the composite credent ial . 



30 28. A composite credential according to claim 26, in which 
different obfuscation is used for each obfuscated 
credential in the composite credential. 



Cm 
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29. A composite credential according to any one of claims 
24 to 28, in which the obfuscation comprises 
asymmetric encryption. 



5 30. A composite credential according to any preceding 
claim, in which the composite credential comprises a 
first credential and a second credential in which the 
second credential is enveloped by the first 
credential . 

10 

31. A composite credential according to claim 23, in which 
the composite credential is obfuscated. 

32. A composite credential according to claim 31, in which 
15 the obfuscation comprises an asymmetric encryption. 

33. A composite credential according to claim 23, in which 
at least one credential is digitally signed. 

20 34 . A composite credential according to claim 33, in which 
a plurality of credentials is digitally signed. 

35. A composite credential according to claim 33, in which 
all credentials in the composite credential are 

25 digitally signed. 

36. A composite credential according to claim 23, in which 
the composite credential is digitally signed. 
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37. A method of communication substantially as described 
herein, with reference to Figure 2 of the drawings 
that follow. 
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A composite credential substantially as described 
herein, with reference to Figure 2 of the drawings 
that follow. 




ABSTRACT 

IMPROVEMENTS IN AND RELATING TO METHODS OF COMMUNICATION 

The present invention provides a method of communication, 
5 the method comprising the steps of a first party (30) 
communicating to a second party (32) a composite 
credential (54) across a distributed electronic network 
. (44) which composite credential (54) comprises a plurality 
of credentials (46-52) . A corresponding composite 

10 credential is also disclosed. 



Figure 2 
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